Certificate
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/lB47mlO74C4stDl6bRoB2Aym5Bg.cer
File: lB47mlO74C4stDl6bRoB2Aym5Bg.cer (raw, json)
Hash identifier: mh7nwR3L31nP/I6g31eqFjqxhufozArnw70sfOPTRKg=
Subject key identifier: 94:1E:3B:9A:53:BB:E0:2E:2C:B4:39:7A:6D:1A:01:D8:0C:A6:E4:18
Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669
Certificate serial: 018CC424C6CD14E15329AD6072166B40D261
Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/lB47mlO74C4stDl6bRoB2Aym5Bg.mft
caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/
Notify URL: https://rrdp.ripe.net/notification.xml
Certificate not before: Mon 01 Jan 2024 08:29:53 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 200014
IP: 185.39.96.0/22
IP: 2a01:48e0::/32
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 04 May 2024 11:00:56 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c4:24:c6:cd:14:e1:53:29:ad:60:72:16:6b:40:d2:61
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669
Validity
Not Before: Jan 1 08:29:53 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=941e3b9a53bbe02e2cb4397a6d1a01d80ca6e418
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8c:53:46:1e:f8:87:79:48:22:12:e5:3e:38:4d:
81:14:fb:02:9c:1c:bd:46:c3:ef:04:02:6e:54:6b:
74:b2:00:71:d3:8c:3c:01:c2:db:89:7f:cd:96:c7:
18:11:01:14:27:df:09:73:cc:db:04:9f:4b:e1:0c:
2e:19:61:24:ca:a4:55:49:69:1a:d0:97:1b:8d:3c:
57:70:78:0a:60:1f:a3:63:d2:28:7a:c9:67:8d:92:
fb:86:eb:72:90:a1:f7:3d:33:fb:19:61:57:c5:7b:
2f:94:92:28:99:3d:a6:d7:f9:28:f0:53:c3:7d:83:
98:db:b5:0c:ac:7f:7d:c7:d3:c0:db:0f:78:01:a4:
22:da:dd:2c:76:0d:14:e3:fc:06:f8:62:eb:25:8b:
0c:0d:ac:61:40:08:11:1c:f9:5e:8c:4b:08:17:de:
a1:0f:7b:28:54:a2:62:ee:b1:cb:43:d3:bd:e6:f9:
a6:f1:1b:42:11:aa:43:53:98:7c:27:ca:1e:89:a9:
a8:d9:87:ea:22:0b:35:93:d9:de:20:df:d4:0c:fe:
1c:75:ff:5b:1f:e8:25:63:03:ae:ba:71:d0:b7:07:
e6:8e:ad:55:d7:df:ce:7b:37:23:97:6e:01:6e:b8:
fc:ba:22:a1:14:ee:6a:e4:46:09:66:8a:1b:2e:d2:
0e:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:1E:3B:9A:53:BB:E0:2E:2C:B4:39:7A:6D:1A:01:D8:0C:A6:E4:18
X509v3 Authority Key Identifier:
keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
Subject Information Access:
CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/
RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/08e404-f426-42e2-9594-da99e34cc30b/1/lB47mlO74C4stDl6bRoB2Aym5Bg.mft
RPKI Notify - URI:https://rrdp.ripe.net/notification.xml
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.39.96.0/22
IPv6:
2a01:48e0::/32
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
200014
Signature Algorithm: sha256WithRSAEncryption
96:bf:6a:80:56:c0:e8:5c:6f:50:2e:27:e8:ec:2f:a9:ed:3d:
8b:1d:e0:68:77:f6:70:ab:1d:24:fc:6b:6f:d5:44:65:f8:6f:
4b:ee:9d:a1:13:fa:2a:8a:64:ed:5d:e4:a6:1b:f7:b8:4c:4d:
36:8d:98:87:ed:68:d1:a7:8a:0e:c3:d9:d6:a2:4c:74:eb:79:
b7:98:bd:c4:7c:4c:3d:f5:ef:ad:19:41:10:44:cc:6b:0d:64:
8c:85:ae:c5:ac:db:89:34:54:00:6d:96:92:88:11:2d:9f:86:
d8:73:55:11:0a:47:1a:1a:fa:e0:08:8a:7d:d2:80:52:d0:f6:
5a:19:ef:20:f0:b8:55:20:f7:d4:03:1f:2d:01:ea:29:44:ed:
56:ac:28:13:a4:4c:d0:09:db:ff:a9:66:f5:52:64:3e:3d:09:
61:f5:ef:7c:a6:b1:9e:1d:18:04:a3:62:3d:91:60:21:d1:6d:
0c:61:95:46:8f:b1:8d:dc:10:55:e3:06:da:b1:38:9e:3d:fb:
07:af:52:f4:6b:04:41:df:7f:d5:19:91:56:3d:1d:d3:66:f8:
84:9e:a7:15:b6:c3:76:cb:08:3f:f5:79:d7:93:ff:9d:42:9f:
c2:01:cf:38:33:ac:1f:bc:d0:71:eb:52:5d:a6:18:f0:d0:dc:
64:c5:99:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri May 3 13:57:47 2024 by rpki-client on console-fra.rpki-client.org